CVE-2022-23628

OPA is an open source, general-purpose policy engine. Under certain conditions, pretty-printing an abstract syntax tree AST that contains synthetic nodes could change the logic of some statements by reordering array literals. Example of policies impacted are those that parse and compare web paths...

EUVD-2022-1041

Malicious code in bioql PyPI...

The vulnerability of the CmpFiletransfer component in the industrial automation software suite Codesys allows a perpetrator to trigger a service failure or exert other adverse effects.

The vulnerability of the CmpFiletransfer component in the Codesys industrial automation software suite is related to deficiencies in access control. Exploiting this vulnerability could allow a malicious actor to cause service interruptions or exert other adverse effects...

The vulnerability of the SAP SQL Anywhere relational database management system lies in the improper assignment of permissions to critical resources. This allows a perpetrator to trigger a service failure or cause other adverse effects.

The vulnerability of SAP SQL Anywhere relational database management systems is related to the improper assignment of permissions for critical resources. Exploiting this vulnerability can allow an attacker to cause service failures or other adverse effects...

The vulnerability of the OpenSSL library, caused by a numerical overflow, allows attackers to trigger a service failure or possibly cause other adverse effects.

The vulnerability of the OpenSSL library is caused by a numerical overflow. Exploiting this vulnerability could allow an attacker to cause a service failure, or possibly have other adverse effects...

The vulnerability of the signature-verification function in the PHP programming language interpreter arises from buffer overflows, which allow attackers to trigger a service failure or potentially cause other adverse effects.

The vulnerability of the signature-verification function in the PHP programming language interpreter arises due to buffer overflow. Exploiting this vulnerability can allow an attacker to cause service failures or potentially have other adverse effects...

The vulnerability of the a2p utility, caused by an overflow in the stack buffer, allows a intruder to trigger a service failure or other adverse effects.

The vulnerability of the a2p utility is caused by an overflow of the staticly allocated stack buffer. Exploiting this vulnerability can allow an attacker to cause a service failure or other adverse effects...

Unsafe object creation in json RubyGem

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269/GHSA-x457-cw4h-hq5f, but does not rely on poor garbage-collection behavior within Ruby. Specificall...

CVE-2020-10663

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsi...

CVE-2020-10663

The JSON gem through 2.2.0 for Ruby, as used in Ruby 2.4 through 2.4.9, 2.5 through 2.5.7, and 2.6 through 2.6.5, has an Unsafe Object Creation Vulnerability. This is quite similar to CVE-2013-0269, but does not rely on poor garbage-collection behavior within Ruby. Specifically, use of JSON parsi...

The vulnerability of the Mac OS X operating system’s file component allows a hacker to trigger a service failure or cause other adverse effects.

The vulnerability of the Mac OS X operating system’s file component is related to insufficient validation of input data. Exploiting this vulnerability can allow an attacker to cause a service failure application termination or have other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to trigger a service failure or cause other effects

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

V8 browser engine vulnerability, which allows a hacker to trigger a service failure or cause other effects

The multiple vulnerabilities in the V8 browser kernel are associated with code errors. Exploitation of these vulnerabilities may allow a remote attacker to cause system failures or potentially have other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service failures or other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to exert other effects or cause service failures

The multiple vulnerabilities of the Google V8 browser component in Google Chrome are related to code errors. Exploiting these vulnerabilities could allow a malicious actor to cause service failures or potentially have other adverse effects...

Vulnerabilities of the Google Chrome browser and the HarfBuzz text formatting library, which allow a perpetrator to trigger a service failure or exert other effects

The multiple vulnerabilities of the Google Chrome browser and the HarfBuzz text formatting library are related to code errors. Exploiting these vulnerabilities could allow a malicious actor to cause service interruptions or potentially have other adverse effects...

Vulnerabilities in the Google Chrome browser that allow a perpetrator to trigger a service failure or cause other effects

The multiple vulnerabilities of the Google Chrome browser are related to code errors. Exploiting these vulnerabilities can allow a malicious actor to cause service interruptions or potentially have other adverse effects...

Vulnerabilities in the Google Chrome browser, which allow a malicious actor to trigger a service failure or otherwise affect the system.

Multiple vulnerabilities in the Google Chrome browser, which, if exploited, could cause a remote attacker to trigger a service failure or other adverse effects...